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Abstract 

Seeking a general framework for reasoning about and comparing 
programming languages, we derive a new view of Milner's CCS [33j . 
We construct a category E of plays, and a subcategory V of views. We 
argue that presheaves on V adequately represent innocent strategies, 
in the sense of game semantics [20] . We equip innocent strategies with 
a simple notion of interaction. 

We then prove decomposition results for innocent strategies, and, 
restricting to presheaves of finite ordinals, prove that innocent strategies 
are a final coalgebra for a polynomial functor [37j derived from the 
game. This leads to a translation of CCS with recursive equations. 

Finally, we propose a notion of interactive equivalence for innocent 
strategies, which is close in spirit to Beffara's interpretation [T] of 
testing equivalences [7] in concurrency theory. In this framework, we 
consider analogues of fair testing and must testing. We show that 
must testing is strictly finer in our model than in CCS, since it avoids 
what we call 'spatial unfairness'. Still, it differs from fair testing, and 
we show that it coincides with a relaxed form of fair testing. 

Note: This is an expanded version of our ICE '11 paper |19j . It notably 
simplifies a few aspects of the development, and corrects the mistaken 
statement that fair and must testing coincide in our semantic framework. 
Must testing only coincides with a relaxed variant of fair testing. This 
version also subsumes a previous preprint, providing more compact proofs. 

1 Overview 

Theories of programming languages Research in programming lan- 
guages is mainly technological. Indeed, it heavily relies on techniques which 
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are ubiquitous in the field, but almost never formally made systematic. 
Typically, the definition of a language then quotiented by variable renaming 
(a-conversion) appears in many theoretical papers about functional program- 
ming languages. Why isn't there yet any abstract framework performing 
these systematic steps for you? Because the quest for a real theory of pro- 
gramming languages is not achieved yet, in the sense of a corpus of results 
that actually help developing them or reasoning about them. However, many 
attempts at such a theory do exist. 

A problem for most of them is that they do not account for the dynamics 
of execution, which limits their range of application. This is for example 
the case of Fiore et al.'s second-order theories \10\ [T6l I17j . A problem for 
most of the other theories of programming languages is that they neglect 
denotational semantics, i.e., they do not provide a notion of model for a 
given language. This is for example the case of Milner et al.'s bigraphs |22j . 
or of most approaches to structural operational semantics [36j, with the 
notable exception of the bialgebraic semantics of Turi and Plotkin [4(Jj. A 
recent, related, and promising approach is Kleene coalgebra, as advocated by 
Bonsangue et al. [2]. Finally, higher-order rewriting [35], and its semantics in 
double categories [l2] or in cartesian closed 2-categories [IB] , is not currently 
known to adequately account for process calculi. 

Towards a new approach The most relevant approaches to us are bial- 
gebraic semantics and Kleene coalgebra, since the programme underlying 
the present paper concerns a possible alternative. A first difference, which is 
a bit technical but may be of importance, is that both bialgebraic semantics 
and Kleene coalgebra are based on labelled transition systems (LTSs), while 
our approach is based on reduction semantics. Reduction semantics is often 
considered more primitive than LTSs, and much work has been devoted to 
deriving the latter from the former |39^ [22] l38l [37] . It might thus be relevant 
to propose a model based only on the more primitive reduction semantics. 

More generally, our approach puts more emphasis on interaction be- 
tween programs, and hence is less interesting in cases where there is no 
interaction. A sort of wild hope is that this might lead to unexpected mod- 
els of programming languages, e.g., physical ones. This could also involve 
finding a good notion of morphism between languages, and possibly propose 
a notion of compilation. At any rate, the framework is not set up yet, so 
investigating the precise relationship with bialgebraic semantics and Kleene 
coalgebra is deferred to further work. 
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How will this new approach look like? Compared to such long-term 
goals, we only take a small step forward here, by considering a particular 
case, namely Milner's CCS [33], and providing a new view of it. This view 
borrows ideas from the following lines of research: game semantics j20] . and in 
particular the notion of an innocent strategy^ graphical games [El [l5] , Krivine 
realisability [28] , Indies [13] , testing equivalences in concurrency [71 [1] , the 
presheaf approach to concurrency |241 125j. and sheaves [31]. It is also, more 
remotely, related to graph rewriting [^ and computads [4j. 



Prom strategies to presheaves Game semantics |20) has provided fully 
complete models of programming languages. It is based on the notion of 
a strategy, i.e., a set of plays in some game, satisfying a few conditions. 
In concurrency theory, taking as a semantics the set of accepted plays, or 
'traces', is known as trace semantics. Trace semantics is generally considered 
too coarse, since it equates, for a most famous example, the right and the 
wrong coffee machines, a.{h + c) and ah + ac [55] . 

An observation essentially due to Joyal, Nielsen, and Winskel is that 
strategies, i.e., prefix-closed sets of plays, are actually particular presheaves 
of booleans on the category C with plays as objects, and prefix inclusions as 
morphisms. By presheaves of booleans on C we here mean functors — )• 2, 
where 2 is the preorder category < 1. If a play p is accepted, i.e., mapped 
to 1 , then its prefix inclusions q ^ p are mapped to the unique morphism 
with domain 1, i.e., idi, which entails that q is also accepted. 

Following Joyal, Nielsen, and Winskel, we observe that considering 
instead presheaves (of sets) on C yields a much finer semantics. So, a play p 
is now mapped to a set S (p) , to be thought of as the set of ways for p to be 
accepted by the strategy S. Considering the set of players as a team, S{p) 
may also be thought of as the set of possible states of the team after playing 
p - which is empty if the team never accepts to play p. 

This presheaf semantics is fine enough to account for bisimilarity |24| [23] . 
Indeed, presheaves are essentially forests with edges labelled by moves. For 
example, in the setting where plays are finite words on an alphabet, the 
wrong coffee machine may be represented by the presheaf S defined by the 
equations on the left and pictured as on the right: 
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5(e) = W, 
S{a) = {x,x'}, 
Siab) = {y}, 
Siac) = {y'}, 



S{e ^ a) = {x I—?- i^, x' 
S{a M> ab) = {y I— ?• x}, 
S{a )- ac) = {y' H> x'} : 



|c 



So, in summary: the standard notion of strategy may be generalised to 
account for branching equivalences, by passing from presheaves of booleans 
to presheaves of sets. 



Multiple players Traditional game semantics mostly emphasises two- 
player games. There is an implicit appearance of three-player games in 
the definition of composition of strategies, and of four-player games in the 
proof of its associativity, but these games are never given a proper status. 
A central idea of graphical games, and to a lesser extent of Indies, is the 
emphasis on multiple-player games. 

Here, there first is a base category B of positions, whose objects represent 
configurations of players. Since the game represents CCS, it should be natural 
that players are related to each other via the knowledge of communication 
channels. So, roughly, positions are bipartite graphs with vertex sets players 
and channels, and edges from channels to players indicating when the former 
is known to the latter. As a first approximation, morphisms of positions 
may be thought of as just embeddings of such graphs. 

Second, there is a category E of plays, with a functor to B sending each 
play to its initial position. Plays are represented in a more flexible way than 
just sequences of moves, namely using a kind of string diagrams. This echoes 
the idea |32j that two moves may be independent, and that plays should 
not depend on the order in which two independent moves are performed. 
Furthermore, our plays are a rather general notion, allowing, e.g., to focus 
on a given player. Morphisms of plays account both for: 

• prefix inclusion, i.e., inclusion of a play into a longer play, and 

• position enlargement, e.g., inclusion of information about some players 
into information about more players. 

Now, restricting to plays above a given initial position X, and then 
taking presheaves on this category Ex, we have a category of strategies on 
X. 
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Innocence A fundamental idea of game semantics is the notion of inno- 
cence, which says that players have a restricted view of the play, and that 
their actions may only depend on that view. 

We implement this here by defining a subcategory Yx ^ of views 
on X, and deeming a presheaf F on Ex innocent when it is determined by 
its restriction F' to Yx, in the sense that it is isomorphic to the right Kan 
extension [30] of F' along ^ . 

Given this, it is sensible to define innocent strategies to be just presheaves 
on Yx , and view them as strategies via the (essential) embedding Yx *— ^ Ex 
induced by right Kan extension. 

Interaction For each position X, we thus have a category Sx = Vx of 
innocent strategies. In game semantics, composition of strategies is achieved 
in two steps: interaction and hiding. Essentially, interaction amounts to 
considering the three-player game obtained by letting two two-player games 
interact at a common interface. Hiding then forgets what happens at that 
interface, to recover a proper two-player game. 

We have not yet investigated hiding in our approach, but, thanks to the 
central status of multiple-player games, interaction is accounted for in a very 
streamlined way. For any position X with two subpositions Xi ^ X and 
X2 ^ X such that each player is in either Xi or X2, but none is in both, 
given innocent strategies Fi G Sxi and F2 G 8x2 7 there is a unique innocent 
strategy, the amalgamation [^1,^2] of -Fi and F2, whose restrictions to Xi 
and X2 are Fi and F2. 

Amalgamation in this sense models interaction in the sense of game 
semantics, and, using the correspondence with presheaves on Ex given by 
right Kan extension, it is the key to defining interactive equivalences. 

CCS Next, we define a translation of CCS terms with recursive equations 
into innocent strategies. This rests on spatial and temporal decomposition 
results for innocent strategies. Spatial decomposition says that giving a 
strategy on a position X is the same as giving a strategy for each of its 
players. Temporal decomposition says that a strategy is determined up to 
isomorphism by its set of initial states, plus what remains of each of them 
after each basic move. Restricting to presheaves of finite ordinals, we also 
prove that innocent strategies form a final coalgebra for a polynomial functor 
(in the sense of Kock [23) derived from the game, thus hinting at links with 
Kleene coalgebra. It is then easy to translate finite CCS into the language 
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induced by our polynomial functor, and to finally extend the translation to 
CCS with recursive equations via infinite unfolding. 

A natural question is then: which equivalence does this translation 
induce on CCS terms? As explained in the following paragraph, we provide 
some preliminary results about interactive equivalences, but essentially leave 
the question open. 

Interactive equivalences Returning to the development of our approach, 
we then define a notion of interactive equivalence, which is close in spirit 
to both testing equivalences in concurrency theory and Krivine realisability 
and Indies. 

The game, as sketched above, allows interacting with players which 
are not part of the considered position. E.g., a player in the considered 
position X may perform an input which is not part of any synchronisation. 
A test for an innocent strategy F on X is then, roughly, an innocent strategy 
G on a position X' with the same channels as X. To decide whether F 
passes the test G, we consider a restricted variant of the game on the 'union' 
X L) X' , forbidding any interaction with the outside. We call that variant 
the closed-world game. 

Then F passes G iff the amalgamation [F, G] , right Kan extended to 
Exux' find then restricted to the closed-world game, belongs to some initially 
fixed class of strategies, ixux' • Finally, two innocent strategies F and F' 
on X are equivalent when they pass the same tests. 

Here are two examples for X. Consider a tick move, fixed in advance. 
Then call successful all plays containing at least one tick, and accordingly 
call successful all states reached after a successful play. One may consider: 

• X™, consisting of strategies whose maximal states (those that admit no 
strict extensions) are all successful; the tick move plays a role analogous 
to the daimon in Indies: it is the only move which is observable from 
the outside; 

• X-^, consisting of strategies in which all states on finite plays admit a 
successful extension. 

From the classical concurrency theory point of view on behavioural equiva- 
lences, the first choice clearly mimicks must testing equivalence, while the 
second mimicks fair testing equivalence [Ml B] . 

Consider the processes 0. and Q\a, where is a process doing infinitely 
many silent transitions. These processes are intuitively quite different: the 
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latter can do an output on the channel a, while the former cannot. They 
are however equated by standard must testing equivalence: the infinite trace 
provided by may prevent the output prefix from being performed. In fact, 
must testing equivalence heavily relies on the potential unfairness of the 
scheduler. In the literature, this peculiar behaviour actually motivates the 
introduction of fair testing equivalence. 

In contrast, our notion of play is more flexible than standard traces, so 
that our counterpart to must testing equivalence actually distinguishes these 
two processes: the infinite play where the output prefix is not performed is 
not maximal, so that the corresponding unfair bchavioTir is not taken into 
account. In other words, thanks to our notion of play, the rather natural 
notion of must testing already avoids what we call 'spatial unfairness'. 
However, must testing does not coincide with fair testing in our setting, 
because there are other sources of unfairness, that are not handled properly. 
Technically, we prove that i™" coincides with the set of strategies whose 
states all admit a successful extension. However, the restriction to finite plays 
in the definition of X-^ is required to rule out other sources of unfairness. 

Summary In summary, our approach emphasises a fiexible notion of 

multiple-player play, encompassing both views in the sense of game semantics, 
closed-world plays, and intermediate notions. Strategies are then described 
as presheaves on plays, while innocent strategies are presheaves on views. 
Innocent strategies admit a notion of interaction, or amalgamation, and are 
embedded into strategies via right Kan extension. This allows a notion of 
testing, or interactive equivalence by amalgamation with the test, right Kan 
extension, and finally restriction to closed-world. 

Our main technical contributions are then a translation of CCS terms 
with recursive equations into innocent strategies, and the study of fair and 
must equivalences in our setting. 

Perspectives Our next task is clearly to tighten the link with CCS. 
Namely, we should explore which equivalence on CCS is induced via our 
translation, for a given interactive equivalence. We will start with A^^ . Fur- 
thermore, the very notion of interactive equivalence might deserve closer 
consideration. Its current form is rather ad hoc, and one could hope to see 
it emerge more naturally from the game. For instance, the fixed class X 
of 'successful' strategies should probably be more constrained than is done 
here. Also, the paradigm of observing via the set of successful tests might 
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admit sensible refinements, e.g., probabilistic ones. 

Another possible research direction is to tighten the link with 'graphical' 
approaches to rewriting, such as graph rewriting or computads. E.g., our 
plays might be presented by a computad [14 , or be the bicategory of rewrite 
sequences up to shift equivalence, generated by a graph grammar in the sense 
of Gadducci et al. [11 . Both goals might require some technical adjustments, 
however. For computads, we would need the usual yoga of U-turns to flexibly 
model our positions; e.g., zigzags of U-turns are usually only equal up to 
a higher-dimensional cell, while they would map to equal positions in our 
setting. For graph rewriting, the problem is that our positions are not exactly 
graphs (e.g., the channels known to a player are linearly ordered). 

Other perspectives include the treatment of more complicated calculi 
like vr or A. In particular, calculi with duplication of terms will pose a 
serious challenge. An even longer-term hope is to be able to abstract over 
our approach. Is it possible to systematise the process starting from a 
calculus as studied in programming language theory, and generating its 
strategies modulo interactive equivalence? If this is ever understood, the 
next question is: when does a translation between two such calculi preserve 
a given interactive equivalence? Finding general criteria for this might have 
useful implications in programming languages, especially compilation. 



Notation Throughout the paper, we abusively identify n with {1 . . . n}, 
for readability. So, e.g., i £ n means i G {1, . . . , n}. 

The various categories and functors constructed F{f) 

in the development are summed up with a short FC > FC' 

description in Table [T} There, given two functors u| [u' 

C A E D, we denote (slightly abusively) by C Ie IK GD * GD' 

the comma category: it has as objects triples {C,D,u) ^id) 
with C € C, G D, and u: F(C) — t- G{D) in E, and as morphisms 
{C,D,u) — )■ {C',D',u') pairs {f,g) making the square above commute. Also, 
when F is the identity on C and G : 1 — )• C is an object C of C, this yields 
the usual slice category, which we abbreviate as C/C. Finally, the category 
of presheaves on any category C is denoted by C = [C°^, Set]. 

Furthermore, for any category C, we denote by ob(C) its set of objects. 
For any functor F: C D, we denote by ¥°p : C°p 0°^ the functor 
induced on opposite categories, defined exactly as F on both objects and 
morphisms. Also, recall that an embedding of categories is an injective-on- 
objects, faithful functor. This admits the following generalisation: a functor 
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Category 


Description of its objects 


C 

B C 
E (B C) 
Ex = (E Ib (B/X)) 

Sx=Yx 

W 

W{X) 


'diagrams' 
positions 
plays 

plays on a position X 
views on X 
innocent strategies on X 

closed-world plays 
closed-world plays on X 



Table 1: Summary of categories and functors 



F: C — ?• D is essentially injective on objects when FC = FC' implies C = C . 
Any faithful, essentially injective on objects functor is called an essential 
embedding. 



2 Plays as string diagrams 

We now describe our approach more precisely, starting with the category of 
multiple-player plays. For the sake of clarity, we first describe this category 
in an informal way, before giving the precise definition (Section [s]) . 



2.1 Positions 

Since the game represents CCS, it should be natural that 
players are related to each other via the knowledge of 
communication channels. This is represented by a kind 
oQ finite, bipartite graph: an example position is on the 
right. Bullets represent players, circles represent channels, and edges indicate 
when a player knows a channel. The channels known by a player are linearly 
ordered. Formally, as explained in Section |3j positions are presheaves over a 
certain category Ci. Morphisms of positions are natural transformations, 
which are roughly morphisms of graphs, mapping players to players and 
channels to channels. In full generality, morphisms thus do not have to be 




■^Only 'a kind of, because, as mentioned above, the channels known to a player are 
linearly ordered. 
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injective, but include in particular embeddings of positions in the intuitive 
sense. Positions and morphisms between them form a category B. 

2.2 Moves 

Plays will be defined as glueings of moves between positions. Moves are 
derived from the very definition of CCS, as we now sketch. The diagrams 
we draw in this section will be given a very precise combinatorial definition 
in Section [3l 

Let us start with the forking move, which corresponds to parallel 
composition in CCS: a process (the player) forks into two sub-processes. In 
the case of a player knowing two channels, the forking move is represented 
by the diagram 




(1) 



to be thought of as a move from the bottom position X 



(with one player p) to the top position Y 



(with two players, which we call the 'avatars' of p). The left- and right-hand 
borders are just channels evolving in time, not noticing that the represented 
player forks into two. The surfaces spread between those vertical lines 
represent links (edges in the involved positions) evolving in time. For example, 
each link here divides into two when the player forks, thus representing the 
fact that both of the avatars retain knowledge of the corresponding channel. 
There is of course an instance iTn of forking for each n, according to the 
number of channels known to the player. As for channels known to a player, 
the players and channels touching the black triangle are ordered: there are 
different 'ports' for the initial player and its two avatars. 
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We then have a tick move whose role is to define successful plays, 
and a move for the channel creation or restriction of CCS, here Un- In the 
case where the player knows two channels, they are graphically represented 
as 




respectively. As expected, there is an instance of each of these two moves 
for each number n of channels known to the player. 

We also need a move to model CCS-like synchronisation, between two 
players. For all n and m, representing the numbers of channels known to 
the players involved in the synchronisation, and for all i € n, j € m, there is 
a synchronisation Tn,i,m,j, represented, in the case where one player outputs 
on channel 3 G 3 and the other inputs on channel 1 E 2, by 




As we shall see in Section [3} the dotted wire in the picture is actually a point 
in the formal representation (i.e., an element of the corresponding presheaf). 

The above four kinds of moves (forking, tick, channel creation, and 
synchronisation) come from the reduction semantics of CCS. We classify 
these as closed-world moves, since they correspond to the evolution of a 
group of players in isolation. 

We however need a more fine-grained structure for moves: moves whose 
final position has more than one player (forking and synchronisation) must 
be decomposed into basic moves, to get an appropriate notion of view. 

We introduce two sub-moves for forking: left and right half-forking. In 
the case where the player knows two channels, they are represented by the 
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following diagrams, respectively: 




These sub- moves represent what each of the 'avatars' of the forking player 
sees of the move. We call vr^ and ir^ the respective instances of the left-hand 
and right-hand basic moves for a player knowing n channels. Formally, 
there will be injections from the left and right half-forking moves to the 
corresponding forking moves. 

We finally decompose synchronisation into an input move and an output 
move: a.P and a.P in CCS become and here (where n is the number 
of known channels, i G {1 . . .n} is the index of the channel bearing the 
synchronisation). Here, output on the right-hand channel and input on the 
left-hand channel respectively look like 




Like with forking, there will be injections from the input and output moves 
to the corresponding synchronisation moves. 

All in all, there are three classes of moves, which we summarise in 
Table [2 

• Tick, channel creation, half-forking, and input/output moves are basic 
moves: they evolve from a position with exactly one player to another 
position with exactly one player. These moves are used to define views 
later on. 

• Forking, synchronisation, tick and channel creation moves are closed- 
world moves: they correspond to the case where a group of players 
evolves on its own, in isolation; they are central to the notion of 
interactive equivalence. 
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Basic 


Full 


Closed-world 


Left half-forking 
Right half-forking 


Forking 


Forking 


Input 
Output 


Input 
Output 


Synchronisation 


Channel creation 


Channel creation 


Channel creation 


Tick 


Tick 


Tick 



Table 2: Summary of classes of moves 



We need a third class of moves, called full and consisting of forking, 
input, output, tick and channel creation. They allow us to focus on a 
single player and all of its avatars. They appear, e.g., in the statement 
of Lemma 12 , which is a partial correctness criterion for closed- world 
plays. 



Formally, we define moves as cospans X ^ P -^r^ Y in the category of 
diagrams (technically a presheaf category C — see Section ^ , where X is the 
initial position and Y the final one. Both legs of the cospan are actually 
monic arrows in C, as will be the case for all cospans considered here. 



2.3 Plays 

We now sketch how plays are defined as glueings of moves. We start with 
the following example, depicted in Figure [l] The initial position consists 
of two players pi and p2 sharing knowledge of a channel a, each of them 
knowing another channel, resp. oi and 02. The play consists of four moves: 
first pi forks into pi^i and pi^2, then p2 forks into p2,i and P2,2, and then 
pi^i does a left half-fork into finally synchronises (as the sender) 

with P2,i- Now, we reach the limits of the graphical representation, but the 
order in which pi and p2 fork is irrelevant: if p2 forks before pi, we obtain 
the same play. This means that glueing the various parts of the picture in 
Figure [1] in different orders formally yields the same result (although there 
are subtle issues in representing this result graphically in a canonical way). 

Let us now sketch a definition of plays. Recall that moves may be seen 
as cospans X ^ M Y, and consider an extended notion of move, which 
may occur in a position not limited to players involved in the move. For 
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example, the moves in Figure [T] are extended moves in this sense. We may 
now state: 

Definition 1 A play is an embedding Xq ^ U in the category C of dia- 
grams, isomorphic to a possibly denumerable 'composition' of moves in the 
(bi)category Cospan(C) of co spans in C, i.e., obtained as a colimit: 




where each Xi ^ Mi ^ ^j+i is an extended move. 

Notation: we often denote plays just by U, leaving the embedding X ^ U 
implicit. 

Remark 1 For finite plays, one might want to keep track not only of the 
initial position, but also of the final position. This indeed makes sense. Finite 
plays then compose 'vertically', and form a double category. But infinite 
plays do not really have any final position, which explains our definition. 

Let a morphism {X ^ U) ^ {Y ^ V) of plays be ^ 
a pair (h, k) making the diagram on the right commute in U > V 
C. This permits both inclusion 'in width' and 'in height'. J J 
E.g., the play consisting of the left-hand basic move in Q ^ ^ y 

embeds in exactly two ways into the play of Figure [TJ (Only 
two because the image of the base position must lie in the base position of 
the codomain.) We have: 

Proposition 1 Plays and morphisms between them form a category E. 

There is a projection functor E — t- B mapping each play X ^ U to its base 
position X. This functor has a section, which is an embedding B ^ E, 
mapping each position X to the 'identity' play X ^ X on X. 

Remark 2 (Size) The category E is only locally small. Since presheaves on 
a locally small category are less well-behaved than on a small category, we will 
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Figure 1: An example play 

actually consider a skeleton o/E. Because E consists only of denumerahle 
presheaves, this skeleton is a small category. Thus, our presheaves in the 
next section may be understood as taken on a small category. 

Remark 3 Plays are not very far from being just (infinite) abstract syntax 
trees (or forests) 'glued together along channels'. 

2.4 Relativisation 

If we now want to restrict to plays over a given base position X, we may 
consider 

Definition 2 Let the category Ex have 

• as objects pairs of a play Y ^ U and a morphism Y ^ X, 

• as morphisms (F ^ C/) — >■ {Y' '—^ U') all pairs {h, k) making the 
diagram 
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commute in C. 

We will usually abbreviate U ^ Y ^ X as just U when no ambiguity 
arises. As for morphisms of positions, in full generality, h and k, as well as 
the morphisms Y ^ X , do not have to be injective. 

Example 1 Let X be the position o — • o — • o — « o . The play 

in Figure [7], say Y ^ U , equipped with the injection Y ^ X mapping the 
two players ofY to the two leftmost players of X, is an object ofKx- 

One naively could imagine that the objects Kx could just consist of plays 
X ^ U on X. However, spatial decomposition, Theorem\^ relies on our 
slightly more complex definition. E.g., still in Figure^ this allows us to 
distinguish between the identity view [2] = [2] ' — > X on pi from the identity 
view [2] = [2] = — > on p2, which would otherwise not be possible. 

3 Diagrams 

In this section, we define the category on which the string diagrams of the 
previous section are presheaves. The techniques used here date back at least 
to Carboni and Johnstone [5l|6]. 

3.1 First steps 

Let us first consider two small examples. It is well-known that directed 
graphs form a presheaf category: consider the category C freely generated 
by the graph with two vertices, say * and [1], and two edges d, c: * — )• [1] 
between them. One way to visualise this is to compute the category of 
elements of a few presheaves on C. Recall that the category of elements of 
a presheaf F on C is the comma category y F, where y is the Yoneda 
embedding. Via Yoneda, it has as elements pairs (C, x) with C G ob(C) and 
X £ F{C), and morphisms (C, x) — t- {D, y) morphisms / : C — t- D in C such 
that F(f)(y) = x (which we abbreviate as y ■ f = x when the context is 
clear) . 
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Example 2 Consider the graph 



with three vertices 0, 1, and 2, and two edges e and e' . 

This graph is represented by the presheaf F defined by the following 
equations, whose category of elements is actually freely generated by the 
graph on the right: 

• e ■ d = 0, 

• = {0, 1, 2}, • e • c = 1, 1 

. F{[l]) = {e,e'}, • e'-d=l 

• e'-c = 2 



2. 



This latter graph is not exactly the original one, hut it does represent it. 
Indeed, for each vertex we know whether it is in F{-k) or F{[1]), hence whether 
it represents a 'vertex' or an 'edge'. The arrows all go from a 'vertex' v to 
an 'edge' e. They lie above d when v is the domain of e, and above c when 
V is the codomain of e. 

Multigraphs, i.e., graphs whose edges have a list of sources instead of 
just one, may also be seen as a presheaves on the category freely generated 
by the graph with 

• as vertices: one special vertex -k, plus for each natural number n a 
vertex, say, [n]; and 

• n + 1 edges ★ — > [n], say di, . . . , dn, and c. 

It should be natural for presheaves on this category to look like multigraphs: 
the elements of a presheaf F above -k are the vertices in the multigraph, the 
elements above [n] arc the n-ary multicdgcs. and the action of the dj's give 
the ith source of a multiedge, while the action of c gives its target. 



Example 3 Similarly, computing a few categories of elements might help 
visualising. As above, consider F defined by 
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• FW = {0,1,2,3,4,5}, _^ 

. F([1]) = F([O]) = 0, ' •e'-c = l, 

• e- d\ = l, 

. F([2]) = {e'}, . e'-d,=A, 

• e-d2 = 2, 

• ^([3]) = {e}, • e'-d2 = 5, 

• e • da = 3, 

• F([n + 4]) = 0, 

whose category of elements is freely generated by the graph: 



ic 

Ta2\ 
12 3 

ci 

d\^ ^ .^^^2 
4 5. 

Now, this pattern may be extended to higher dimensions. Consider for 
example extending the previous base graph with a vertex [mi, . . . , for 
all natural numbers n, j;, mi, . . . , m„, plus edges 

si: [mi] [mi, . . . ,mn;p], 

Sn'- [nin] [mi, . . . ,mn;p],and 
t: \p] [mi,...,mn;p]. 

Let now C be the free category on this extended graph. Presheaves on C 
are a kind of 2-muItigraphs: they have vertices, multiedges, and multiedges 
between multiedges. 

We could continue this in higher dimensions. 



3.2 Constructing the base category 

Our base category follows a very similar pattern. We start from a slightly 
different graph: let Go have just one vertex let Gi, have one vertex 
plus a vertex [n] for each natural number n, plus n edges di, . . . ,dn- * — )■ [n]. 
Let Co and Ci be the categories freely generated by Go and Gi, respectively. 
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So, presheaves on Ci are a kind of hypergraphs with arity (since vertices 
incident to a hyperedge are numbered). This is enough to model positions. 
Now, consider the graph G2, which is Gi augmented with: 

• for all n, vertices vr^, vrj^, 

• for all n and I < i < n, vertices l'^^ and 

• for all n, edges s,t: [n] — )• s,t: [n] — )• vr^, s,t: [n] — )■ vr^, s: [n] — >• 

t: [n + 1] 

• for all n and 1 < i < n, edges s,t: [n] — )■ i^j, [n] — 

We slightly abuse language here by calling all these t's and s's the same. We 
could label them with their codomain, but we refrain from doing so for the 
sake of readability. 

Now, let C2 be the category generated by G2 and the relations s o di = 
todi for all n and 1 <i <n (for all sensible — common — codomains) . 



Example 4 Again, computing a few categories of elements is in order. For 
example, the category of elements of (the representable presheaf on) 3 is 
the poset freely generated by the graph 




tds 



sds 



to be compared with the corresponding pictures <^ . 



Example 5 Similarly, the category of elements of ui is the poset freely 
generated by the graph 
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tdi > t < td2 




1 

sdi > s. 

Note that only channel creation changes the number of channels known to 
the player, and accordingly the corresponding morphism t has domain [n + 1] . 

Presheaves on C2 are enough to model views, but since we want more, 
we continue, as follows. 

Let G3 be G2, augmented with: 

• for all n, a vertex 7r„, and 

• edges I: ttI^^ TTn and r: tt'^^ iTn- 

Definition 3 Let C3 be the category generated by G3, the previous relations, 
plus the relations I o s = r o s. 

The equation models the fact that a forking move should be played by just 
one player. We also call s = los = ros the common composite, which gives 
a uniform notation for the initial player of full moves. 

Example 6 The category of elements of -K2 is the poset freely generated by 
the graph 





Isdi = rsdi > Is = rs < lsd2 = rsd2- 

The two views corresponding to left and right half-forking are subcategories, 
and the object idT^^ 'ties them together'. 
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Presheaves on C3 are enough to model fuU moves; to model closed-world 
moves, and in particular synchronisation, we continue as follows. 

Let G4 be G3, augmented with, for all n, m, 1 < i < n, and 1 < j < m, 



a vertex r, 



n,t,m,j 



, and 



• ed ges e: z.^^ — ?• Tn^i^mj and p: • — >• Tn^i^mj (e and p respectively 
stand for 'emission' and 'reception'). 

Definition 4 Let C4 be the category generated by G4, the previous relations, 
plus, for each t^- A TnA,m,j ^ j' relation e o s o di = p o s o dj . 

This equation is the exact point where we enforce that a synchronisation 
involves an input and an output on the same channel, as announced in 
Example |4j 

Example 7 The category of elements of t^^^^i^i is the preorder freely gener- 
ated by the graph 




etds = ptdi 



pt 



ptd2 



id- 



T3,3,2,l 



esds = psdi 



ps 



psd2 



esd2- 



Again, the two views corresponding to i^^ and ^2 1 o^fe subcategories, and the 
new object T3^3^2,i ties them together. 



3.3 Positions and moves 

We have now defined the base category C = C4 on which the string diagrams 
of Section [2] are presheaves. More accurately we have defined a sequence 
Co ...■—)• C4 of subcategories. 



Positions Positions are finite presheaves on Ci, or equivalently, finite 
presheaves on C4 empty except above Ci. 
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Moves Basic moves should be essentially representable presheaves on 
objects in ob(C2) \ ob(Ci). Recall however that basic moves are defined as 
particular cospans in C. This is also easy: in the generating graph G2, each 
such object c has exactly two morphisms s and t into it, from objects, say, 

S t 

[nj^and [rit], respectively. By Yoneda, these induce a cospan [us] — > c [nt] 
in C, which is the desired cospan. (Observe, again, that only f„ has Us 7^ nt.) 

Similarly, full moves either are basic moves, or are essentially repre- 
sentable presheaves on objects in ob(C3) \ ob(Ci), i.e., representables on 
some 7r„. To define the expected cospan, first observe that by the equation 

s 1 I 

Is = rs, we obtain an arrow [n] — > 7r„ — > 7r„, equal to rs, in C. This will 
form the first leg of the cospan. For the other, observe that for each n and 
i G n, we obtain, by the equations ltdi = Isdi = rsdi = rtdi and by Yoneda, 
that the outermost part of 




commutes in C, where n ■ -k denotes an n-fold coproduct of Letting n|n be 
the induced pushout, and the dashed arrow t be obtained by its universal 
property, we obtain the desired cospan [n] 7r„ -A n\n. 

Finally, closed- world moves either are full moves, or are essentially 
representable presheaves on some Tn,i,m,j- To define the expected cospan, we 
proceed as in Figure [2| compute the pushout n i|j m, and infer the dashed 

s' t' 

arrows s' and t' to obtain the desired cospan n i\j m — > Tn,i,m,j ^ n i\j m. 

Remark 4 (Isomorphisms) Moves are particular cospans in C. For cer- 
tain moves, the involved objects are representable, but not for others, like 
forking or synchronisation, whose final position is not representable. In the 
latter cases, our definition thus relies on a choice, e.g., of pushout in Q. 
Thus, let us be completely accurate: a move is a cospan which is isomorphic 
to one of the cospans chosen above, in C'^ ^' , i.e., the category of functors 
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Figure 2: Construction of the synchronisation move 



from the category • • — )• • (generated by the graph with three objects and 
an arrow from one to each of the other two) to C. 



3.4 Extended moves, plays, and relativisation 

The most deUcate part of our formahsation of Section |3] is perhaps the 
passage from moves to extended moves. Recall from the paragraph above 
Definition [l] that an extended move should be like a move occurring in a 
larger position. 



Moves with interfaces To formalise this idea, we first equip moves with 
interfaces, as standard in graph rewriting [23j. Since moves are cospans, one 
might expect that interfaces be cospans too. This may be done, but there is 
a simpler, equivalent presentation. The route we follow here might have to 
be generalised in order to handle more complex calculi than CCS, but let us 
save the complications for later work. 

Here, we define an interface for a cospan X — )• M y to consist of a 
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presheaf / and morphisms X ^ I — t- y such that 

/ » Y 

1 1 

X > M 

commutes, and / has dimension 0, i.e., is empty except above Co, i.e., consists 
only of channels. 

Definition 5 A cospan equipped with an interface is called a cospan with 
interface. 

Moves are particular cospans, and we now equip them with canonical 
interfaces: all moves except channel creation preserve the set of channels, 
the interface is then n ■ -k, with the obvious inclusion. For example, the less 
obvious case is -Kn- we choose 

n ■ ★ > n\n 

1 1 

N ' 7r„, 

where the upper map is as in Q. For channel creation, we naturally choose 

n ■ * > [n + 1] 

1 1 

[n] > Un- 

Definition 6 A move with interface is one of these cospans with interface. 
The basic, full, or closed-world character is retained from the underlying 
move. 

Extended moves We now plug moves with interfaces into contexts, in 
the following sense. 

Definition 7 A context for a cospan with interface ^ is a position Z , 
equipped with a morphism I ^ Z . 



(5) 
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From any cospan with interface as in ([s]) and context C : I ^ Z, we 
construct the cospan C[fj] as in: 




I.e., we push the available morphisms out of / along C, and infer the dashed 
arrows, which form the desired cospan. 

Definition 8 An extended move is a cospan of the shape C[fj], for any 
move with interface /x and context C as above. 

Example 8 Recall that [2] is a position with one player knowing two chan- 
nels. Recall from Figure the pushout 



di 



d2 



[2] 



Pi 



[2] 

P2 

22|i2, 



equivalently obtained as the pushout 

id^ + di 



•k + i< 
[dl,d2] 

[2] 



Pi 



*+[2] 

[ai,P2] 
> 22|i2. 



The base position of Figure^ is thus 2 2I1 2. Recall also from Q that 
2|2 denotes the position with two players both knowing two channels. Now, 
we have the forking move [2] 7r2 -^^ 2|2. Equipping it with the interface 



[di,d2 



[2], 
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and putting it in the context id^, + di: -k +★ — )• * + [2], (which happens to he 
the same as the interface), we obtain 




This formally constructs the first layer of Figure [I[ Constructing the whole 
play would he a little too verbose to he included here, but essentially straight- 
forward. 

Plays and relativisation We may now read Definition [T] again, this time 
in the formal setting, to define plays. Similarly, the definition of morphisms 
now makes rigorous sense, as well as Proposition [T] 

Proof of Proposition [ij E is the full subcategory of the arrow category 
of C whose objects are plays. □ 
Similarly, Section [2. 4| now makes rigorous sense. 

4 Innocent strategies as sheaves 

Now that the category of plays is defined, we move on to defining innocent 
strategies. There is a notion of a Grothendieck site |31j . which consists of 
a category equipped with a (generalised) topology. On such sites, one may 
define a category of sheaves, which are very roughly the presheaves that 
are determined locally w.r.t. the generalised topology. We claim that there 
is a topology on each Ex, for which sheaves adequately model innocent 
strategies. Fortunately, in our setting, sheaves admit a simple description, so 
that we can avoid the whole machinery. But sheaves were the way we arrived 
at the main ideas presented here, because they convey the right intuition: 
plays form a Grothendieck site, and the states of innocent strategies should 
be determined locally. 
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In this section, we first define innocent strategies, and state tlie spatial 
and temporal decomposition theorems. We then present our coalgebraic 
interpretation of innocent strategies, i.e., we define a polynomial endofunctor 
F, and show that presheaves of finite ordinals on views form a final F- 
coalgebra. We then derive from this a formal language and its interpretation 
in terms of innocent strategies. We finally use this language to translate 
CCS with recursive equations into innocent strategies. 

4.1 Innocent strategies 

Definition 9 A view is a finite, possibly empty 'composition' [n] ^ V of 
(extended) basic moves in Cospan(C), i.e., a play in which all the cospans 
are basic moves. 

The empty case yields the view [n] ■— >• [n]; but note that empty presheaves 
(with not even an initial position) are not views. 

Example 9 Forking ([T]) has two non-trivial views, namely the (left legs of) 
basic moves ^ . Each of them embeds into forking: 




Example 10 In Figure^ the leftmost branch contains a view consisting of 
three basic moves: two and an output. 

Definition 10 For any position X, let Yx be the full subcategory ofKx 
consisting of views. 

More precisely, Yx consists of spans U -(r^ Y ^ X where Y ^ U is a, view. 

Definition 11 Let the category Sx of innocent strategies on X be the 
category Yx of presheaves on Yx ■ 
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A possible interpretation is that for a presheaf F G Yx and view V £ Yx, 
F(y) is the set of possible states of the strategy F after playing V. 

It might thus seem that we could content ourselves with defining only 
views, as opposed to plays. However, in order to define interactive equiv- 
alences in Section [5| we need to view innocent strategies as (particular) 
presheaves on the whole of Ex . 

The connection is as follows. Recall 
from MacLane [30j the notion of right Kan 
extension. Given functors F and G as on 
the right, a right Kan extension Rani?(G) of 
G along F is a functor H : D — )• E, equipped 
with a natural transformation e : HF — )• G, 
such that for all functors ET: D — ?• E and transformations a: KF — )• G, 
there is a unique a' : K ^ H such that a = e oi (a' o idp), where oi is 
vertical composition of natural transformations. Now, precomposition with 
F induces a functor Cat(F,E): Cat(D,E) Cat(C,E), where Cat(D,E) is 
the category of functors D — )• E and natural transformations between them. 
When E is complete, right Kan extensions always exist (and an explicit 
formula for our setting is given below) , and choosing one of them for each 
functor C — )• E induces a right adjoint to Cat(-F, E). Furthermore, it is 
known that when F is full and faithful, then e is a natural isomorphism, i.e., 
HF ^ G. 

Proposition 2 If F is full and faithful, then Ranp is a full essential em- 
bedding. 

Proof: For essential injectivity on objects, assume H = I{anp{G), Rani?(G') = 
H' , and i: H ^ H' is an isomorphism with inverse k. We must construct 
an isomorphism G = G' . Let j : G — >• G' be cq' oi {iF) e^^. Similarly, let 
l-.G'^Gheecoi (kF) oi e^^ We have 

loij = ec 01 (kF) oi e^ oi [iF) ox e^ 

= €G oi (kF) oi (iF) 01 e^^ 
= €G oi {{k oi i) o F) oi e^^ 
= ec oi 
= idc- 

Similarly, j oi Z = irfc' aiid we have G = G' . 

To see that Ran^? is full, observe that for any i: H ^ H' , with H = 
Rani;'(G) and H' = Rani?(G'), j = eg" (^iF) is an antecedent of i by 
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Rani?. Indeed, by definition, Rani?(j) is the unique i' : H ^ H' such that 
^G' °i {^'F) = 3 °i ^G- But the latter is equal to ec oi {iF), so i' = i. 

Finally, to show that Ran^? is faithful, consider G,G' : C — t- E and two 
natural transformations G — t- G' such that manp^i) = IlanF(j) = k. 
Then, by construction of A;, we have 

z oi ec = ec 01 (kF) = j oi ec- 

But, ec being an isomorphism, this implies i = j as desired. □ 

Returning to views and plays, the embedding ix '■ ^ is full, so 
right Kan extension along : — t- induces a full essential embedding 
RaUjop : Yx — ^ Ex- The (co) restriction of this essential embedding to its 
essential image thus yields an essentially surjective, fully faithful functor, 
i.e., an equivalence of categories: 

Proposition 3 The category Sx is equivalent to the essential image of 
Ran,- op . 

The standard characterisation of right Kan extensions as ends |30j yields, 
for any F G Yx and U G E^: 

Ran,o.(F)(C/)= / F{Vf-^'''^\ 
^ Jv&Nx 

i.e., giving an element of Ranjop(F) on a play U amounts to giving, for 
each view V and morphism y —)•[/, an element of F{V)^ satisfying some 
compatibility conditions. In Example [TT] below, we compute an example 
right Kan extension. 

The interpretation of strategies in terms of states extends: for any 
presheaf F G Ex and play U G Ex, F{U) is the set of possible states of the 
strategy F after playing U . That F is in the image of Ran^op amounts to 
F{U) being a compatible tuple of states of F after playing each view of U. 

Example 11 Here is an example of a presheaf F G Ex which is not innocent, 
i.e., not in the image o/RaUjop. Consider the position X consisting of three 
players, say x,y,z, sharing a channel, say a. Let be the subposition 
with only x and a, and similarly for Xy, X^, X^^y, and X^^z- Let = 
[ill ^ Xx ^ X) be the play where x inputs on a, and similarly let Oy 
and Oz be the plays where y and z output on a, respectively. Let now 
Sx,y = ("T"!, 1,1,1 -^'x,y ^ X) bc the play where x and y synchronise on a 
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(x inputs and y outputs), and similarly let Sx^z be the play where x and z 
synchronise on a. 

Finally, let F{Sx,y) = 2 be a two-element set, and F{Sx,z) = 0- To 
define F on other plays, the idea is to map any subplay of Sx,y and Sx,z to a 
one-element set 1, and other plays to 0. But if U is a subplay of, say, Sx,y, 
then, for any epic e: C/ -» U' , U' has the same views as U, so we choose to 
also map U' to 1. Formally, beyond F{Sx,y) = 2 and F(Sx,z) = 0, define F 
for any play U' by: 

• if there exists a player t S {y, z}, a play U, and arrows U' 'J—U > Sx,t, 
with e epic and i monic but not epic, then let F{U') = 1; 

• otherwise let F{U') = 0. 

In particular, for any strict superplay U of Sx,y or Sx,z, F{U) = 0, and we 
have F{Ix) = F{Oy) = F{Oz) = F{idx) = F{idy) = F{idz) = 1. 

This F fails to be innocent on two counts. First, since x and y accept 
to input and output in only one way, it is non-innocent to accept that they 
synchronise in more than one way. Formally, Sx^y has two non-trivial views, 
Ix and Oy, so since F maps identity views to a singleton, F{Sx,y) should 
be isomorphic to F{Ix) x F(Oy) = 1x1 = 1. Second, since x and z accept 
to input and output, it is non-innocent to not accept that they synchronise. 
Formally, F{Sx,z) should also be a singleton. This altogether models the fact 
that in CCS, processes do not get to know with which other processes they 
synchronise. 

The restriction of F to Yx, i-^., F' = F o i°-^ , in turn has a right Kan 
extension F" , which is innocent. (In passing, the unit of the adjunction 
Cat(i^, Set) H Raiij^ is a natural transformation F — F" .) To conclude this 
example, let us compute F" . First, F' only retains from F its values on views. 
So, if Xx denotes the empty view on Xx, F'(Xx) = 1, and similarly F'{Xy) = 
F'{Xz) = 1. Furthermore, F'{Ix) = F'{Oy) = F'{Oz) = 1. Finally, for 
any view V not isomorphic to any of the previous ones, F'iV) = 0. So, 
recall that F" maps any play U ^ Y ^ X to Jy^^^ F'{V)^x^^^^K So, 
e.g., since the views of Sx,y are subviews of Ix and Oy, we have F"{Sx^y) = 
F'{Ix) X F'{Oy) = 1. Similarly, F"{Sx,z) = 1- But also, for any play U 
such that all views V ^ U are subviews of either of Ix, Oy, or Oz, we have 
F"{U) = 1. Finally, for any play U such that there exists a view V ^ U 
which is not a subview of any of Ix, Oy, or Oz, we have F"{U) = 0. 

One way to understand Proposition His to view N x as the syntax for innocent 
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strategies: presheaves on views are (almost) infinite terms in a certain syntax 
(see Section [4.4| below) . On the other hand, seeing them as presheaves on 
plays will allow us to consider their global behaviour: see Section [5] when 
we restrict to the closed-world game. Thus, right Kan extension followed by 
restriction to closed-world will associate a semantics to innocent strategies. 

Remark 5 The relevant Grothendieck topology on Ex says, roughly, that 
a play is covered by its views. Any sheaf for this topology is determined by 
its restriction to for its elements on any non-view play U are precisely 
amalgamations of its elements on views of U . Right Kan extension just 
computes these amalgamations in the particular case of a topology derived 
from a full subcategory, here views. 

So, we have defined for each X the category Sx of innocent strategies 
on X. This assignment is actually functorial — )• CAT, as follows (where 
CAT is the large category of locally small categories). Any morphism 
/ : y — )■ X induces a functor f\ : Vy — t- Yx mapping (y ^ Z — )■ y) to 
(y -^^ Z — 7- y — )• X). Precomposition with {f\)°^ thus induces a functor 
S/: ^ Vy- 

Proposition 4 This defines a functor S: — )• CAT. 

Proof: A straightforward verification. □ 

But there is more: for any position, giving a strategy for each player in 
it easily yields a strategy on the whole position. We call this amalgamation 
of innocent strategies (because the functor S is indeed a stack [32], and this 
is a particular case of amalgamation in that stack) . Formally, consider any 
subpositions Xi and X2 of a given position X, inducing a partition of the 
players of X, i.e., such that Xi U X2 contains all players of X, and Xi D X2 
contains none. Then Yx is isomorphic to the coproduct Vxi +Yx2- (Indeed, 
a view contains in particular an initial player in X, which forces it to belong 
either in Yxi or in Yx2-) 

Definition 12 Given innocent strategies Fi on Xi and F2 on X2, let their 
amalgamation be their copairing 

[FuF2] : Vf ^ (Vx, + Yx^r = + ^ Set. 
By universal property of coproduct: 

Proposition 5 Amalgamation yields an isomorphism of categories Yx — 
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Example 12 Consider again the position X from Example 11, and let Xy^z 
he the subposition with only y and z. We have Yx — (^x^ + which 
we may explain by hand as follows. A view on X has a base player, x, y, or 
z, and so belongs either in Yx^ or in Yxy ^ ■ Furthermore, if V is a view on 
X and W is a view on y, then YxiV, W) = (and similarly for any pair of 
distinct players in X). 

Now, recall F' , the restriction of F to Yx- We may define F^: — )• 
Set to be the restriction of F' along the (opposite of the) embedding Y x^ ^ 
Yx, and similarly Fy^z to be the restriction of F' along Yxy^^ ^ Yx- We 
have obviously F' = [Fx,Fy^z]- 

Analogous reasoning leads to what we call spatial decomposition. For 
any X, let Pl{X) = J2nXi[n])^ i-e-, the set of pairs (n, x), where x is a 
player in X, knowing n channels. 

Theorem 1 We have Yx = U{n,x)eP\{X) V[„]. 

Again, this is a particular case of amalgamation in the stack S, but we 
do not need to spell out the definition here. 



4.2 Temporal decomposition 

Let us now describe temporal decomposition. Recall that basic moves are 
left and right half- forking Q, input, output, tick, and channel creation. 

Definition 13 Let M be the graph with vertices all natural numbers n, and 
with edges n ^ n' all (isomorphism classes of) basic moves M : [n] — )• [n']. 

Recall from Remark [4] that the notion of isomorphism considered here is 
that of an isomorphism of cospans in C. 



Definition 14 Let M„ be the set of edges from ninJA. 



For stating the temporal decomposition theorem, we need a standard [21j 
categorical construction, the category of families on a given category C. 
First, given a set X, consider the category Fam(X) with as objects X- 
indexed families of sets Y = {Yx)x&x-, and as morphisms Y ^ Z families 
gx of maps. This category is equivalently described as 
the slice category Set/ X. To see the correspondence, consider any family 
{Yx)x<^x-, and map it to the projection function X]a;ex ^ X sending [x, y) 
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to X. Conversely, given / : y ^ X, let, for any x G X, be the fibre of / 
above x, i.e., f~^{x). 

Generalising from sets X to small categories C, Fam(C) has as objects 
families p: Y ^ ob(C) indexed by the objects of C. Morphisms {Y,p) 
{Z, q) are pairs of n: F — > Z and u: F — > mor(C), where mor(C) is the set 
of morphisms of C, such that dovnov = p, and codoti = q o u. Thus, any 
element y £Y above C G C is mapped to some u{y) € Z above C" G C, and 
this mapping is labelled by a morphism v{y) : C ^ C in C The obtained 
category is locally small. 

Further generalising, for C a locally small category, we may define 
Fam(C) in exactly the same way (with Y still a set), and the obtained 
category remains locally small. 

The temporal decomposition theorem is: 

Theorem 2 There is an equivalence of categories 



The main intuition is that an innocent strategy is determined up to iso- 
morphism by (i) its initial states, and (ii) what remains of them after each 
possible basic move. The family construction is what permits innocent 
strategies with several possible states over the identity play. 
Proof sketch: For general reasons, we have: 





^ Fam ( [EMeM„ Veod(M) , Set] ) 
- [EMeM„V°od(M)'Set] 



where A : Set — [J^MeMn '^cod(Af) ' ^^^1 maps any set X to the constant 
presheaf mapping any object to X and any arrow to the identity. 
By definition, the last category is a lax pullback 




Set 



■71 




Set 
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in CAT. 

Now, any basic move M : n ^ n' induces a functor (— oM) : V[„'] — t- V[„] , 
mapping any view V G V[„/] to ^ o M (with composition in Cospan(C)). We 
show that the square 



cod(M) 



cod(M) 



(6) 



is a lax pushout in Cat, where \m,v- ^(^[n] M oV, seen in V[„], is the 
obvious inclusion, which for general reasons is mapped by the hom-2-functor 
CAT(-,Set) to a lax pullback. But CAT(!,Set) = A and CAT(zd,Set) = id, 
so we obtain a canonical isomorphism of lax pullbacks 



SN = [V5,Set]- 
More detail is in Appendix [A) 



E V-(M)>Set 



□ 



Remark 6 The theorem almost makes innocent strategies into a sketch (on 
the category with positions as objects, finite compositions of extended moves 
as morphisms, and the JAx 's as distinguished cones). Briefly, being a sketch 
would require a bijection of sets Sn = IlA^eMn Scod(M) ■ Here, the bisection 
becomes an equivalence of categories, and the family construction sneaks in. 

4.3 Innocent strategies as a terminal coalgebra 

Temporal decomposition gives 

S„ ~ Fam I J]^ Scod(Af) 

for all n. Considering a variant of this formula as a system of equations 
will lead to our interpretation of CCS. The first step is to replace Set with 
FinOrd, the category of finite ordinals and monotone functions. The proof 
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applies mutatis mutandis and we obtain an equivalence, which, because both 
categories are skeletal, is an isomorphism: 



(7) 



where 



• Famj is the same as Fam but with finite families, i.e., for any category 
C, ob(Fam/(C)) = E/eFinOrd(ob(C))^ = (ob(C))* is the set of finite 
words over objects of C, also known as the free monoid on ob(C); 

• and for any category C, C denotes the functor category [C°^, FinOrd]. 

Remark 7 Recall that in the proof of Theorem Fam arises from the 
'constant presheaf functor A: Set — )• — , with — a complicated category. This 

functor itself is equal to restriction along ?■ 1, via 1 = Set. Replacing 

Set with FinOrd thus replaces A with the analogous functor FinOrd — )• — , via 
1 = FinOrd, and thus Fam with Famj. 

Furthermore, because FinOrd embeds into Set, the special strategies of 
V[„] embed into S^n]- 

Then, taking advantage of the fact that FinOrd is a small category, we 
consider its set FinOrdo of objects, i.e., finite ordinals, and the endofunctor 
F on Set/FinOrdo defined on any family of sets X = (Xj)jgFjnOrdo by^ 



= E n ^cod(A/) ) , 

/eFinOrdo \MeM„ 

where we abusively confuse [n'\ = cod(M) and the natural number n' itself. 
The isomorphism Q becomes 

oh{%^) - (F(ob(Vr)))„. 

We may decompose F as follows. Consider the endofunctor on Set/ 
FinOrdo defined by {dX)n = Um^m^ ^cod{M), for any family X G Set/FinOrdo- 
We obviously have: 



Lemma 1 F is equal to the composite {d—)*. 
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This endofunctor is polynomial [27] and we now give a characterisation 
of its final coalgebra. The rest of this subsection is devoted to proving: 

Theorem 3 The family ob(Vn) formed for each n by (the objects of) Yn is 
a terminal coalgebra for F. 

Consider any F-coalgebra a: X — )■ FX. 

We define by induction on a sequence of maps f^'-X^ V[_] , such 
that for any view V of length less than N , and any A^' > N , fN'{x)(y) = 
f]Sf(x)(V), and similarly the action of /Ar(x) on morphisms is the same as 
that of /at' (a;). 

To start the induction, take foix) to be the strategy mapping id^^] to 
7r(o(x)), i.e., the length of a(x) E J2ieF\nOrdo{{'^^)n)^, and all other views 
to 0. 

Furthermore, given /^v, define fN+i to be 

X ^FX F{Y^]) ^ VP], 

where the equivalence is by temporal decomposition. 
Unfolding the definitions yields: 

Lemma 2 Consider any x G Xn, and a{x) = (zi, . . . , z^). For any move 
M : n ^ n' and view V : n' ^ n" of length at most N , and for any i €z k, 
fN+i{x){V o M) = Eiefc fN{zi{M)){V). 

For any x G X„, we have a sequence fo{x) ^ fi{x) ^ . . . /Ar(x) 
/Ar+i(x) ^ ... which is pointwise stationary. This sequence thus has a 
colimit in V[„], the presheaf mapping any view V of length to fNiV) (or 
equivalently fiy'{x) for any A^' > A''), which allows us to define: 

Definition 15 Let f : X ^ V[_] map any x G Xn to the colimit of the 
fN{x) 's. 

By construction, we have 

Lemma 3 The following diagram commutes: 



[F{f) 
F(VP]). 
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Lemma 4 The set-map f is a map of F-coalgehras. 

Proof: Let, for any innocent strategy S G V[„] and i G S{id\^n])-, S\i be 
the strategy mapping any view V to the fibre over i of SiV) — )■ 5(id[„]). 
Using the notations of Lemma [2| we must show that for any i £ k, we have 
{f{x))\i{V oM) = f{zi{M)){V). But Lemma |2| entails that f{x){V o M) ^ 

! i' 

f{x){id^n]) is actually the coproduct over i' £ k oi all f{zii(M)){V) — 1 — 
7r(a(x)), so its fibre over i is indeed f{zi{M)){V). □ 

Lemma 5 The map f is the unique map X — J- V[_] of F-coalgehras. 

Proof: Consider any such map g of coalgebras. It must be such that 
g{x){id^ji^) = 7r(a(x)), and furthermore, using the same notation as before, 
for any i £ k {g{x))\i{y o M) = g{zi{M)){V)., which imposes by induction 
that f = g. □ 
The last two lemmas directly entail Theorem [3j 



4.4 Languages 

In particular, the family supports the operations of the grammar 
... n h Fi ... (Vi G /) 



(I G FinOrdo) 



... n'h Fm ... (VM : [n] [n] G M) 

n h (M ^ Fm) ' 

Here, n\- F denotes a presheaf of finite ordinals on The interpretation 
is as follows: given presheaves Fi, . . . , Fj, for / G FinOrdo, the leftmost rule 
constructs the finite coproduct J^iei presheaves (finite coproducts exist 
in Yn because they do in FinOrd). In particular, when / is the empty ordinal, 
we sum over an empty set, so the rule degenerates to 



nh0 

In terms of presheaves, this is just the constantly empty presheaf. 

For the second rule, if for all basic M : [n] ^ [n'], we are given Fm G 
V[„/], then {M i— )• F]\j) denotes the image under ([T]) of 

{1,1^ M^Fm). 
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CCSApp 

— ((x: n) G S and ai, . . . ,a„ G T) 

h x(ai, . . . ,a„j 

(a ^ r) 



H; r h ... (Vi E /) 



(/ G FinOrdo and Vi E I, [oij G T) 



Global 

S;AihPi ... S;A„hP„ H;rhP 
r h rec xi(Ai) := Pi, . . . ,x,i(A„) := P„ in P 

Figure 3: CCS syntax 

Here, we provide an element of the right-hand side of ([7]), consisting of the 
finite ordinal / = 1 = {1}, and the function mapping M to Fm G (up 
to currying). That was for parsing; the intuition is that we construct a 
presheaf with one initial state, 1, which maps any view starting with M, say 
V o M, to Fjifiy). Thus the Pm's specify what remains of our presheaf after 
each possible basic move. In particular, when all the P/vf 's are empty, we 
obtain a presheaf which has an initial state, but which does nothing beyond 
it. We abbreviate it as = (_ i— )• 0) . 



4.5 Translating CCS 

It is rather easy to translate CCS into this language. First, define CCS 
syntax by the natural deduction rules in Figure [3j where Names and Vars 
are two fixed, disjoint, and infinite sets of names and variables; H ranges 
over finite sequences of pairs (x: n) of a variable x and its arity n G FinOrdo, 
such that the variables are pairwise distinct; P ranges over finite sequences 
of pairwise distinct names; there are two judgements: P h P for global 
processes, S; P h P for open processes. Rule Global is the only rule for 
forming global processes, and there S = (xi : |Ai|, . . . , : |A„|). Finally, a 
denotes a or a, for a G Names, and [aj = [aj = a. 

First, we define the following (approximation of a) translation on open 
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processes, mapping each open process E!;r h P to [P] G ¥„, for n = |r|. 
This translation ignores the recursive definitions, and we will refine it below 
to take them into account. We proceed by induction on P, leaving contexts 
S; r implicit: 



Let us explain intuitions and notation. In the first case, we assume implicitly 
that (x: /c) G H; the intuition is just that we approximate variables with 
empty strategies. Next, P\Q is translated to the strategy with one initial 
state, which only accepts left and right half-forking first, and then lets its 
avatars play [PJ and IQJ, respectively. Similarly, i^a.P is translated to the 
strategy with one initial state, accepting only the channel creation move, and 
then playing [PJ. In the last case, the guarded sum J2iei^i-Pi translated 
to the strategy with one initial state, which 

• accepts input on any channel a when ai = a for some i e I, and output 
on any channel a when ccj = a for some i E I; 

• after an input on o, plays the sum of all [Pj]] 's such that = a; and 
after an output on a, plays the sum of all |Pj] 's such that = a. 

Formally, in the definition, we let, for all j € n, Ij = {i e I \ ai = a]} and 
Ij = {i E I \ (Xi = aj}. In particular, if 7 = 0, we obtain 0. 

Thus, almost all translations of open processes have exactly one initial 
state, i.e., map the identity view on [n] to the singleton 1. The only exceptions 
are variable applications, which are mapped to the empty presheaf. 

The translation extends to global processes as follows. Fixing a global 
process Q = (rec ,ti(Ai) := Pi, . . . ,xi.{Ai.) : = Pk in P) typed in T with n 
names, define the sequence (P*)ieFinOrdo of open processes (all typed in H; F) 
as follows. First, P" = P. Then, let P*+^ = dP\ where d is the derivation 
endomap on open processes typed in any extension S; (F, A) of S; F, which 
unfolds one layer of recursive definitions. This map is defined by induction 
on its argument as follows: 

d{xi{ai, ...,aki)) = Pi[bj ^ Oj]i<j<fe, d{va.P) = ua.dP 




d{P\Q) = dP\dQ 
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where for all / G {1, . . . , A;}, A; = (61, . . . , ft^J, and P[a] denotes simultaneous, 
capture-avoiding substitution of names in P by a. 

By construction, the translations of these open processes form a sequence 
IP^J IP^J ... of inclusions in V„, such that for any natural number i and 
view V G V„ of length i (i.e., with i basic moves), [[-P-'K^) is fixed after 
j = {k + at worst, i.e., for all j > {k + [P^l(F) = IP^''+^^{V). 
Thus, this sequence has a colimit in V„, the presheaf sending any view V of 
length i to iP^^+^'^'jiV). We put: 

Definition 16 Let the translation of Q be [QJ = colimjgFinOrd[[P*l- 

Which equivalence is induced by this mapping on CCS, especially when 
taking into account the interactive equivalences developed in the next section? 
This is the main question we will try to address in future work. 

5 Interactive equivalences 

5.1 Fair testing vs. must testing: the standard case 

An important part of concurrency theory consists in studying behavioural 
equivalences. Since each such equivalence is supposed to define when two 
processes behave the same, it might seem paradoxical to consider several 
of them. Van Glabbeek [3T| argues that each behavioural equivalence 
corresponds to a physical scenario for observing processes. 

A distinction we wish to make here is between fair scenarios, and 
potentially unfair ones. An example of a fair scenario is when parallel 
composition of processes is thought of as modelling different physical agents, 
e.g., in a game with several players. Otherwise said, players are really 
independent. On the other hand, an example of a potentially unfair scenario 
is when parallelism is implemented via a scheduler. 

This has consequences on so-called testing equivalences Let "n? be a 
fixed action. 

Definition 17 A process P is must orthogonal to a context C , notation 
P _L™ C, when all maximal traces of C[P] play ^ at some point. 

Here, maximal means either infinite or finite without extensions. Let P-^"" 
be the set of all contexts must orthogonal to P. 

Definition 18 P and Q are must equivalent, notation P ~m Q, when 

_|_m _ _|_m 
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In transition systems, or automata, we have fl (where fl is the 

looping process, producing infinitely many silent transitions). This might be 
surprising, because the context C = a.^ | □ intuitively should distinguish 
these processes, by being orthogonal to 0|a but not to f2 alone. However, it 
is not orthogonal to Q\a, because C[0|a] has an infinite looping trace giving 
priority to Q. This looping trace is unfair, because the synchronisation on 
a is never performed. Thus, one may view the equivalence fl as 
exploiting potential unfairness of a hypothetical scheduler. 

Usually, concurrency theorists consider this too coarse, and resort to 
fair testing equivalence. 

Definition 19 A process P is fair orthogonal to a conteod C, notation 
P -L-^ C , when all finite traces of C[P] extend to traces that play ^ at some 
point. 

Again, P-*-^ denotes the set of all contexts fair orthogonal to P. 
Definition 20 P and Q are fair equivalent, notation P Q, when P^^ = 

This solves the issue, i.e., Q oOf Q\a. 

In summary, the mainstream setting for testing equivalences relies on 
traces; and the notion of maximality for traces is intrinsically unfair. This is 
usually rectified by resorting to fair testing equivalence over must testing 
equivalence. Our setting is more flexible, in the sense that maximal plays are 
better behaved than maximal traces. In terms of the previous section, this 
allows viewing the looping trace r2|a|a. .•s? — > . . . as non-maximal. 

In the next sections, we define an abstract notion of interactive equivalence 
(still in the particular case of CCS but in our setting) and we instantiate it 
to define and study the counterparts of must and fair testing equivalences. 

5.2 Interactive equivalences 

Definition 21 A play is closed- world when it is a composite of closed-world 
extended moves. 

Equivalently, a play is closed- world when all of its basic moves are part of a 
closed-world move. 

Let W E be the full subcategory of closed-world plays, W{X) being 
the fibre over X for the projection functor W ^ B, i.e., the subcategory of 
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W consisting of closed- world plays with base X, and morphisms {idx,k) 
between thenJll 

Let the category of closed-world behaviours on X be the category 
Gx = W(X) of presheaves on W(X). We may now put: 

Definition 22 An observable criterion consists for all positions X , of a 
replete subcategory Xx ^ Gx • 

Recall that ix being replete means that for all F G JLx and isomorphism 
f:F^F'in Gx, F' and / are in ±x- 

An observable criterion specifies the class of 'successful', closed- world 
behaviours. The two criteria considered below are two ways of formalising 
the idea that a successful behaviour is one in which all accepted closed- world 
plays are 'successful', in the sense that some player plays the tick move at 
some point. 

We now define interactive equivalences. Recall that [F, G] denotes the 
amalgamation of F and G, and that right Kan extension along i'^ induces a 
functor RaUj^p : Yz — ^z- Furthermore, precomposition with the canonical 

inclusion jz ■ W(Z) ^ induces a functor : — )• W(Z). Composing 
the two, we obtain a functor Gl: — )• Gz'- 

Ran .op . » 

Sz = ^ ^ W(Z) = Gz. 

Definition 23 For any innocent strategy F on X 
and any pushout square P of positions as on the right, 
with I consisting only of channels, let F^^ be the class 
of all innocent strategies G onY such that G\{[F,G]) G 

Here, G is thought of as a test for F. Also, P denotes the whole pushout 
square and F^^ denotes all the valid tests for the considered pushout square 
P. From the CCS point of view, / corresponds to the set of names shared 
by the process under observation (F) and the test (G). 

Definition 24 Any two innocent strategies F^' £ Sx are X-equivalent, 
notation F ~x F' , iff for all pushouts P as in\^ F^^ = F'^^ . 

''This is not exactly equivalent to what could be noted Wx, since in the latter there are 
objects U -i^ Y ^ X with a strict inclusion Y X. However, both should be equivalent 
for what we do in this paper, i.e., fair and must equivalences. 



/ > Y 

I (8) 

X * Z 
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5.3 Fair vs. must 

Let us now define fair and must testing equivalences. Let a closed- world 
play be successful when it contains a Furthermore, for any closed- world 
behaviour G G Gx and closed- world play U £ W{X), an extension of a state 
a e G{U) to U' is a a' e G{U') with i: U ^ U' and G{i){a') = a. The 
extension a' is successful when U' is. The intuition is that the behaviour G, 
before reaching U' with state cr', passed through U with state a. 

Definition 25 T/ie fair criterion 1-^ contains all closed-world behaviours 
G such that any state a € G{U) for finite U admits a successful extension. 

Now call an extension of o" G G{U) strict when [/ — t- [/' is not surjective, 
or, equivalently, when U' contains more moves than U . For any closed-world 
behaviour G G Gx, a state a G G{U) is G-maximal when it has no strict 
extension. 

Definition 26 Let the must criterion i"* consist of all closed-world be- 
haviours G such that for all closed-world U and G-maximal a G G{U), U is 
successful. 



As explained in the introduction and Section 5.1 , unlike in the standard 
setting, this definition of must testing equivalence distinguishes between the 
processes ft and Q\a. Indeed, take the CCS context G = a.Z> \ □, which 
we can implement by choosing as a test the strategy T = [a.^J on a single 
player knowing one channel a. Taking / to consist of the sole channel a, the 



pushout Z as in Definition 23 consists of two players, say x for the observed 
strategy and y for the test strategy, sharing the channel o. Now, assuming 
that Q loops deterministically, the global behaviour G = GI([[[P]], T]) has 
exactly one state on the identity play, and again exactly one state on the 
play TTi consisting of only one fork move by x. Thus, G reaches a position 
with three players, say xi playing Q, xi playing a, and y playing a.^ . The 
play with infinitely many silent moves by x\ is not maximal: we could insert 
(anywhere in the sequence of moves by xi) a synchronisation move by xi 
and y, and then a tick move by the avatar of y. Essentially: our notion of 
play is more fair than just traces. 

To get more intuition about must testing equivalence in our setting, we 
prove that it actually coincides with the testing equivalence generated by 
the following criterion: 

Definition 27 The spatially fair criterion 1.^^ contains all closed-world 
behaviours G such that any state a G G{U) admits a successful extension. 
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This criterion is almost like the fair criterion, except that we do not restrict 
to finite plays. The key result to show the equivalence is: 

Theorem 4 For any innocent strategy F on X, any state a G Q\{F){U) 
admits a G\{F) -maximal extension. 

The proof is in Appendix [Bj Thanks to the theorem, we have: 

Lemma 6 For all F £ Sx, GI(F) G iff GI(F) G X^/. 

Proof: LetG = GI(F). 

(^) By Theorem |4| any state a G G{U) has a G-maximal extension 
a' G G{U'), which is successful by hypothesis, hence a has a successful 
extension. 

(^) Any G-maximal a G G{U) admits by hypothesis a successful 
extension which may only be on U by G-maximality, and hence U is successful. 
□ (Note that U is not necessarily finite in the proof of the right-to-left 
implication, so that the argument does not apply to the fair criterion.) 

Now comes the expected result: 

Theorem 5 For all F,F' gSx, F ~xm F' iff F r^^sf F' . 

Proof: (^) Consider two innocent strategies F and F' on X, and an 
innocent strategy G on y (as in the pushout ([s])). We have, using Lemma [6j 

GI(F II G) G X"^ iff GI(F II G) G X*" 
iff GI(F' II G) G X™ 
iff GI(F' II G) G X"^ 

('<^j Symmetric. □ 

Intuitively, must testing only consider spatially fair schedulings, in the 
sense that all players appearing in a play should be given the opportunity 
to play: no one should starve. 

However, this is not the only source of unfairness, so that must test- 
ing and fair testing differ. To see this, consider the CCS process P = 
vh.xec x{a, b) := b\{b.{x{a, b)) + a) in x{a, b), that can repeatedly perform 
synchronisations on the private channel b, until it chooses to perform an 
output on a. We have {nj {Pj while l^j [[P|. Indeed, since the 
choice between doing a synchronisation on b or an output on a is done by a 
single player, the infinite play where the output on a is never performed is 
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maximal: no player starve, we just have a player that repeatedly chooses 
the same branch, in an unfair way. 

We leave for future work the investigation of such unfair scenarios and 
their correlation to the corresponding behaviours in classical presentations 
of CCS. 



A Temporal decomposition 

This section is a proof of Theorem [2j Let us first review the general 
equivalences mentioned in the proof sketch. The product of a family of 
presheaf categories is isomorphic to the category of presheaves over the 
corresponding coproduct of categories: 

Lemma 7 We have Umgm^ Scod(M) = [Ea/gm,, V°^d(M)' ^et]- 

Furthermore, let the functor A : Set — t- C map any set X to the constant 
presheaf mapping any C £ C to X . We have: 

Lemma 8 For any small category C, Fam(C) ~ (C ^ A). 

Proof: A generalisation of the more well-known Set"'*' ~ Set/X. □ 

Corollary 1 We have: 

Fam[ n Seodw)=^([E KLiMy^^^]l^)- 
\MeM„ / A/eM„ 

We now construct the lax pushout ([6]). A first step is the construction, 
for each move [n] M -^-^ [n'], of a functor (— o M) : V[„/] — )• V[„] given by 
precomposition with M in Cospan(C). This functor maps any Vi: [n'] ^ V\ 
to the view V\ o M, i.e., the view [n] ^ V( defined by the colimit 
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This of course relies on the choice of such a coUmit for every V and Vi . Any 
morphism / : Vi — V2 hi V[„/] , letting V2 = V20V, is mapped to the dashed 
arrow induced by universal property of pushout in 




Once the choice has been made on objects, the arrow map is determined 
uniquely. 

This family of functors allows us to decompose V[„] as follows: 
Lemma 9 The diagram 



cod(M) 



cod(M) 



A 



(9) 



is a lax pushout, where \m,v'- id[ 
inclusion. 



M oV , seen in V[„], is the obvious 



Proof: For any category C, taking such a lax pushout of id^ with 1 just 
adds a terminal object to C. The rest is an easy verification. A dual result 
of course holds with V[„], reversing the direction of A. □ 

Now, it is well-known that, in any small 2-category K, any contravariant 
hom-2-functor, i.e., 2-functor of the shape ,X) for X ^ maps 
weighted colimits in K to weighted limits in Cat. For an introduction to 
weighted limits and colimits in the case of enrichment over Cat, see Kelly [25]. 
Here, for any 2-category P, and 2-functors G: P — )• IC and J: — )• Cat, 
any colimit L = J -k G oi G weighted by J with unit ^ : J — )• ), L) in 
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[P°P , Cat] is mapped, for any object X G K, by the hom-2-functor 1C(— ,X) 
to a limit of K{G{-),X): P°p Cat weighted by J in Cat, with unit 

X) : J — )- Cat(K(L, X),K{G{-), X)), in Cat. In particular, lax pushouts 
are mapped to lax pullbacks. As usual, considering a larger universe, we 
may replace Cat with CAT and obtain the same results with IC = Cat. 

Recalling our lax pushout ([9]) and taking the hom-categories to Set, we 
obtain a lax pullback 

I* A* 
Set < 

in CAT, i.e., a comma category. But observe that restriction along ! is 
precisely A: Set — EAfeM„ V^^^^j^^^, Set], so we have indeed shown that 

rOp 

cod(Af) ' 



Sf„i is a comma category [J^MeM^ ^cod(M)^^^^^ ^ ^■ 



B Maximal extensions 

This section is a proof of Theorem [4j 

Lemma 10 For any position X , the category W(X) of closed-world plays 
is a preorder. 

Proof: Easy. □ 
In the following, we consider the quotient poset. 

Lemma 11 In W(X), any non- decreasing chain admits an upper bound. 

Recall M, the graph of all basic moves, and the set M„ of edges from 
n, for each n. Let now, for each n, be the analogous set with full moves, 
i.e., the set of isomorphism classes of full moves from [n]. 

Lemma 12 For each play U G Ex, the coproduct of all s maps from full 
moves 

j2 J2 uiM) ) ^ J2 uH (10) 

nSFinOrd A,fg]v[-f / nSFinOrd 

is injective. 
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Recall here that for forking, we have also called s the common composite 

I o s = r o s (see the discussion following Definition |3]) . 

Proof: By induction on U. □ 

Lemma 13 Any non- decreasing sequence in the poset W{X) admits its 
colimit in C as an upper bound. 

Proof: Consider any increasing sequence [/^ C/^ . . . of plays in 
W(X). Let U be its colimit in C We want to prove that [/ is a play. 



First, observe that U satisfies joint injectivity of s-maps as in Lemma 12 
indeed, if we had a player p and two full moves M and M' such that 
s(M) = s{M') = p, then all of M, M' , and p would appear in some U^, 
which, being a play, has to satisfy joint injectivity. 

For each n, [/" comes with a sequence of compatible (closed-world) 
extended moves 

X = ^ ^ X]" ^ .. . ^ ^ Ml" ^ Xl" ^ ... 

which are also (by the colimit cocone) morphisms above U in C. For 
each i > 1, taking the colimit of the i first moves yields a finite play 
X M> [/" ^ X". By convention, letting Uq = X extends this to « > 0. 
Similarly, we may consider all the given plays infinite, by accepting not only 
extended moves, but also identity cospans. 

We consider the poset of pairs {N, n) G {(0, 0)} l±) X^A^eFinOrd' ^ ■, with 
lexicographic order, i.e., {N,n) < {N',n') when N < N' or when N = N' 
and n < n' . 

We will construct by induction on (N, n) a sequence of composable 
closed-world moves, with colimit U' , such that for all {N,n), U^_^_^i C U' 
in W(X) /U. More precisely, we construct for each (A^, n) an integer K]sr^n 
and a sequence 

(again, if K^^n = 0, we mean the empty sequence) such that 

• for all {N',n') < {N,n), we have Kjqiy < Kjy^n aud the sequence 
(Mf '''')iei^^,^, is a prefix of {M^'^^ J; 

• and the colimit, say U N,n, of (M/^'"')jgXjv n such that for all {N', n') < 
{N, n), C UN,n in W{X)/U. 
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For the base case, we let -fCo.o = 0, which forces M^'^ to be the empty 
sequence on X. 

For the induction step, consider any {N,n) / (0,0), and let (A'^o,no) 
be the predecessor of {N,n). The induction hypothesis gives a KjVo,no arid 
a sequence {M^°'"'°)i^KNQ satisfying some hypotheses, among which the 
existence of a diagram 



above U. 

Now, if M^_^_^_^ — )• U factors through UNo,noj then we put Kjy^n = 
KNo,no and {M^'"')i(zK^„ = (M/''''"°)ig/^^^^^^ , and ah induction hypotheses 
go through. 

Otherwise, MJ^_^_^_-^ is played by players in ^]v-n which are not in the 
joint image of all s maps (10) in U]\fQ^noi otherwise s maps in U could not 



be jointly injective, contradicting Lemma 12 Technically, the diagram 



is obtained by pushing some (non-extended) closed-world move y — t- M ^ y 
along some morphism I ^ Z from an interface I, and the induced morphism 
Y -)■ X^_^ U^_^ UNo,no factors through ^^^^""^ • We consider the 

subposition Z' C X^'^J^° making 



Y 



1^1 c ^ j^A^cno 

a pushout; Z' consists of the players in that are not in the image of 

y, plus their names, plus possibly missing names from /. 

Then, pushing Y ^ M ^Y' along I ^ Z'^we obtain an extended move 
^kXI, ^M'^ X'. We let Kn^u = K^.^n^ + 1 and define (Aff '"),6i^^ „ 

to be the extension of (M/^°'"")jgi^j^^ by M' . This induces a unique 
map UN,n U hy universal property of Un. colimit. All induction 

hypotheses go through; in particular, [/jy_„_,_^ is a union U'^_^ U M^_^j^^ in 
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W{X)/U, and actually a union U'^_^UM; similarly, UN,n = Uj\fo,no UM; so, 
since we have U^^_^ C U]\fo,no by induction hypothesis, we obtain UJ^_^_^_l C 

UN,n- 

The sequences M^'" induce by union a possibly infinite sequence of 
closed- world extended moves, i.e., a closed- world play U' , such that for all 
{N,n), C/;^_„+i C U', hence, for all n, U"" Q U' Q U, i.e., U' ^ C/. Thus, U 
is indeed a play. □ 

We are almost ready for proving Theorem [4} We just need one more 
lemma. Consider any innocent strategy F on X, play U £ W{X), and any 
state a G G\{F){U). Consider now the poset of GI(F)-extensions of a 
(made into a poset by choosing a skeleton of W(X)), where a' G F{U') < 
a" G F(U") iff U' < U" . This poset is not empty, since it contains a. 
Furthermore, we have: 

Lemma 14 Any non- decreasing sequence in Fcr admits an upper bound. 
Proof: Any such sequence, say (cj)jgFinOrd) induces a non-decreasing 



sequence of plays in W{X), say {Ui)i, which by Lemma 13 admits its colimit, 
say U' , as an upper bound. Now, any view inclusion j : V ^ U' , factors 
through some Ui, and we let aj = {cri)\v (this does not depend on the choice 
of i). This assignment determines (by innocence of F and by construction 
of the right Kan extension as an end) an element a' G F{U'), which is an 
upper bound for ((Ti)igFinOrd- D 
Proof of Theorem [4| Consider any innocent strategy F on X, play 
U G W{X), and any state a G G\{F){U). Consider as above the poset Fa- of 
GI(-F)-extensions of a. By the last lemma, we may apply Zorn's lemma to 
choose a maximal element of F^^, which is a GI(-F)-maximal extension of a. 

a 
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